[prev in list] [next in list] [prev in thread] [next in thread]
List: oisf-users
Subject: Re: [Oisf-users] eDrop in fast.log, nothing in drop.log
From: Victor Julien <lists () inliniac ! net>
Date: 2013-11-11 8:34:19
Message-ID: 5280968B.7010104 () inliniac ! net
[Download RAW message or body]
On 11/11/2013 12:08 AM, Stephen Watson wrote:
> I have drop.log setup in my yaml, yet nothing appears in the drop log
> when stuff is dropped. It does appear in my fast.log, but as wDrop,
> =
> =
> =
> 11/11/2013-18:04:49.700485 [wDrop] [**] [1:2103134:5]
> =
> =
> =
> Suricata 1.4.6 =96 af_packet.
> =
The drop log is only used/filled in IPS mode.
-- =
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
_______________________________________________
Suricata IDS Users mailing list: oisf-users@openinfosecfoundation.org
Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
OISF: http://www.openinfosecfoundation.org/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic